nginx
tcp/443 tcp/80
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f81cb3a648fe5e6edc2de527149a0183ee0
Found 41 files trough .DS_Store spidering: /assets /backup.php /dist /dist/images /dist/images/03-1.png /dist/images/ajaxLoader.gif /dist/images/apple-touch-icon.png /dist/images/calarrow.png /dist/images/canvas.PNG /dist/images/chosen-sprite.png /dist/images/close.png /dist/images/controls.png /dist/images/default-user.png /dist/images/discord-logo.png /dist/images/doc.png /dist/images/emptyChartBg.png /dist/images/favicon.png /dist/images/glyphicons-halflings-white.png /dist/images/glyphicons-halflings.png /dist/images/icon-192.png /dist/images/icon-512.png /dist/images/index.html /dist/images/leantime-no-access.jpg /dist/images/logo-powered-by-leantime.png /dist/images/logo.png /dist/images/logo.svg /dist/images/mattermost-logoHorizontal.png /dist/images/onboarding /dist/images/openid-icon.png /dist/images/Screenshots /dist/images/svg /dist/images/undraw_progressive_app_m9ms.png /dist/images/zulip-org-logo.png /dist/js /download.php /index.php /mix-manifest.json /robots.txt /theme /userfiles /web.config
Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f8138c97a7c593e6a9ce0df3a1f2a8c3b85
Found 41 files trough .DS_Store spidering: /.htaccess /css /fonts /fonts/roboto /images /js /js/app /js/compiled-app.min.js /js/compiled-base-libs.min.js /js/compiled-extended-libs.min.js /js/index.html /js/jsSourceMapAppSrc.map /js/jsSourceMapBaseLib.map /js/jsSourceMapExtendedSrc.map /js/jsSourceMapFooterSrc.map /js/libs /js/libs/bootstrap-timepicker.min.js /js/libs/confetti /js/libs/jquery.form.js /js/libs/jquery.growl.js /js/libs/jquery.nyroModal /js/libs/jquery.tagsinput.min.js /js/libs/prism /js/libs/simple-color-picker-master /js/libs/simpleGantt /js/libs/slimselect.js /js/libs/slimselect.min.js /js/libs/tinymce-plugins /js/libs/uppy /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/easyreader/css /theme/easyreader/fonts /theme/easyreader/index.html /theme/easyreader/js /theme/Leantime-1.0 /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fd8dfc1624e7e10a22eb9d881bf2aeb9c
Found 10 files trough .DS_Store spidering: /.htaccess /css /fonts /fonts/roboto /images /js /less /robots.txt /theme /userfiles
Severity: medium
Fingerprint: 5f32cf5d6962f09c9150089691500896a2d45f57ab7cbc7faee14614792c1a57
Found 37 files trough .DS_Store spidering: /.htaccess /css /fonts /fonts/roboto /images /js /js/app /js/compiled-app.min.js /js/compiled-base-libs.min.js /js/compiled-extended-libs.min.js /js/index.html /js/jsSourceMapAppSrc.map /js/jsSourceMapBaseLib.map /js/jsSourceMapExtendedSrc.map /js/jsSourceMapFooterSrc.map /js/libs /js/libs/bootstrap-timepicker.min.js /js/libs/confetti /js/libs/jquery.form.js /js/libs/jquery.growl.js /js/libs/jquery.nyroModal /js/libs/jquery.tagsinput.min.js /js/libs/prism /js/libs/simple-color-picker-master /js/libs/simpleGantt /js/libs/slimselect.js /js/libs/slimselect.min.js /js/libs/tinymce-plugins /js/libs/uppy /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/Leantime-1.0 /userfiles
Severity: medium
Fingerprint: 5f32cf5d6962f09cef4770e6ef4770e6f82520c70dc2f46fc1a89c44a7674131
Found 42 files trough .DS_Store spidering: /.htaccess /css /fonts /fonts/roboto /images /js /js/app /js/compiled-app.min.js /js/compiled-base-libs.min.js /js/compiled-extended-libs.min.js /js/index.html /js/jsSourceMapAppSrc.map /js/jsSourceMapBaseLib.map /js/jsSourceMapExtendedSrc.map /js/jsSourceMapFooterSrc.map /js/libs /js/libs/bootstrap-timepicker.min.js /js/libs/confetti /js/libs/jquery.form.js /js/libs/jquery.growl.js /js/libs/jquery.nyroModal /js/libs/jquery.tagsinput.min.js /js/libs/prism /js/libs/simple-color-picker-master /js/libs/simpleGantt /js/libs/slimselect.js /js/libs/slimselect.min.js /js/libs/tinymce-plugins /js/libs/uppy /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/easyreader/css /theme/easyreader/fonts /theme/easyreader/fonts/OpenDyslexic2 /theme/easyreader/index.html /theme/easyreader/js /theme/Leantime-1.0 /userfiles
Severity: medium
Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacf7041cbdc018febdd020d7813fe9424
Found 33 files trough .DS_Store spidering: /.htaccess /css /fonts /fonts/roboto /images /js /js/app /js/compiled-app.min.js /js/compiled-base-libs.min.js /js/compiled-extended-libs.min.js /js/index.html /js/jsSourceMapAppSrc.map /js/jsSourceMapBaseLib.map /js/jsSourceMapExtendedSrc.map /js/jsSourceMapFooterSrc.map /js/libs /js/libs/bootstrap-timepicker.min.js /js/libs/confetti /js/libs/jquery.form.js /js/libs/jquery.growl.js /js/libs/jquery.nyroModal /js/libs/jquery.tagsinput.min.js /js/libs/prism /js/libs/simple-color-picker-master /js/libs/simpleGantt /js/libs/slimselect.js /js/libs/slimselect.min.js /js/libs/tinymce-plugins /js/libs/uppy /less /robots.txt /theme /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02112955134cb54e23483156a296b55f3c
Found 24 files trough .DS_Store spidering: /.htaccess /css /css/components /css/index.html /css/jqueryUi /css/libs /css/main.css /fonts /fonts/roboto /images /js /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/easyreader/css /theme/easyreader/fonts /theme/easyreader/fonts/OpenDyslexic2 /theme/easyreader/index.html /theme/easyreader/js /theme/Leantime-1.0 /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a87ad063bf4b9841b9abe1c5a24c6e364
Found 19 files trough .DS_Store spidering: /.htaccess /css /css/components /css/index.html /css/jqueryUi /css/libs /css/main.css /fonts /fonts/roboto /images /js /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/Leantime-1.0 /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447da7ba3dad66a845d08699ca515f261c7
Found 18 files trough .DS_Store spidering: /.htaccess /backup.php /css /css/components /download.php /fonts /fonts/roboto /images /index.php /js /less /robots.txt /theme /theme/dark /theme/default /theme/easyreader /theme/Leantime-1.0 /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b709e45be484cb2a1f64555d20b661de3
Found 14 files trough .DS_Store spidering: /.htaccess /backup.php /cron.php /css /css/components /download.php /fonts /fonts/roboto /images /index.php /js /less /theme /userfiles
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf176422b63f482aeddf0d5aeddf0d5aeddf0d5
Found 2 files trough .DS_Store spidering: /css /css/components
Open service 116.80.43.74:80 · leantime.obaland.com
2024-05-26 00:41
HTTP/1.1 403 Forbidden Server: nginx Date: Sun, 26 May 2024 00:41:10 GMT Content-Type: text/html Content-Length: 548 Connection: close Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 116.80.43.74:443 · leantime.obaland.com
2024-05-26 00:41
HTTP/1.1 302 Found Server: nginx Date: Sun, 26 May 2024 00:41:15 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.28 Cache-Control: no-cache, private X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff 0: Referrer-Policy 1: same-origin Access-Control-Allow-Origin: https://leantime.obaland.com Pragma: no-cache Content-Security-Policy: default-src 'self' 'unsafe-inline';base-uri 'self';;script-src 'self' 'unsafe-inline' unpkg.com;font-src 'self' data:;img-src 'self' *.leantime.io data: blob:;frame-src 'self' *.google.com *.microsoft.com *.live.com;frame-ancestors 'self' *.google.com *.microsoft.com *.live.com Set-Cookie: sid=8000bdba93ce8a2ab1a31b538b42e608358898e9-0d33fe118b4ea4da997b410f14a92653aa8460aa-3e736d0bebe5042c1e703f193f318e09c3cfec53; expires=Sun, 26-May-2024 16:41:15 GMT; Max-Age=57600; path=/; HttpOnly Set-Cookie: sid=8000bdba93ce8a2ab1a31b538b42e608358898e9-0d33fe118b4ea4da997b410f14a92653aa8460aa-3e736d0bebe5042c1e703f193f318e09c3cfec53; expires=Sun, 26 May 2024 08:41:15 GMT; Max-Age=28800; path=/; secure; httponly; samesite=strict Set-Cookie: language=en-US; expires=Tue, 25 Jun 2024 00:41:15 GMT; Max-Age=2592000; path=/; httponly; samesite=strict Location: https://leantime.obaland.com/auth/login Page title: Redirecting to https://leantime.obaland.com/auth/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://leantime.obaland.com/auth/login'" /> <title>Redirecting to https://leantime.obaland.com/auth/login</title> </head> <body> Redirecting to <a href="https://leantime.obaland.com/auth/login">https://leantime.obaland.com/auth/login</a>. </body> </html>
Open service 116.80.43.74:80 · leantime.obaland.com
2024-05-19 00:09
HTTP/1.1 403 Forbidden Server: nginx Date: Sun, 19 May 2024 00:09:08 GMT Content-Type: text/html Content-Length: 548 Connection: close Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 116.80.43.74:443 · leantime.obaland.com
2024-05-19 00:09
HTTP/1.1 302 Found Server: nginx Date: Sun, 19 May 2024 00:09:15 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.28 Cache-Control: no-cache, private X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff 0: Referrer-Policy 1: same-origin Access-Control-Allow-Origin: https://leantime.obaland.com Pragma: no-cache Content-Security-Policy: default-src 'self' 'unsafe-inline';base-uri 'self';;script-src 'self' 'unsafe-inline' unpkg.com;font-src 'self' data:;img-src 'self' *.leantime.io data: blob:;frame-src 'self' *.google.com *.microsoft.com *.live.com;frame-ancestors 'self' *.google.com *.microsoft.com *.live.com Set-Cookie: sid=175d368e6dc84baa265ce52218ad201befc73e90-c6705200fb08fae867786ebfde9f058422cb6dd8-2a8ced89073e0d85a7051066eafc90098f964443; expires=Sun, 19-May-2024 16:09:14 GMT; Max-Age=57600; path=/; HttpOnly Set-Cookie: sid=175d368e6dc84baa265ce52218ad201befc73e90-c6705200fb08fae867786ebfde9f058422cb6dd8-2a8ced89073e0d85a7051066eafc90098f964443; expires=Sun, 19 May 2024 08:09:15 GMT; Max-Age=28800; path=/; secure; httponly; samesite=strict Set-Cookie: language=en-US; expires=Tue, 18 Jun 2024 00:09:15 GMT; Max-Age=2592000; path=/; httponly; samesite=strict Location: https://leantime.obaland.com/auth/login Page title: Redirecting to https://leantime.obaland.com/auth/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://leantime.obaland.com/auth/login'" /> <title>Redirecting to https://leantime.obaland.com/auth/login</title> </head> <body> Redirecting to <a href="https://leantime.obaland.com/auth/login">https://leantime.obaland.com/auth/login</a>. </body> </html>
Open service 116.80.43.74:80 · leantime.obaland.com
2024-05-12 00:14
HTTP/1.1 403 Forbidden Server: nginx Date: Sun, 12 May 2024 00:14:50 GMT Content-Type: text/html Content-Length: 548 Connection: close Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 116.80.43.74:443 · leantime.obaland.com
2024-05-12 00:14
HTTP/1.1 302 Found Server: nginx Date: Sun, 12 May 2024 00:14:55 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.28 Cache-Control: no-cache, private X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff 0: Referrer-Policy 1: same-origin Access-Control-Allow-Origin: https://leantime.obaland.com Pragma: no-cache Content-Security-Policy: default-src 'self' 'unsafe-inline';base-uri 'self';;script-src 'self' 'unsafe-inline' unpkg.com;font-src 'self' data:;img-src 'self' *.leantime.io data: blob:;frame-src 'self' *.google.com *.microsoft.com *.live.com;frame-ancestors 'self' *.google.com *.microsoft.com *.live.com Set-Cookie: sid=9a6f017845d0055f992de7e698b1de76e16f4d92-a7b63f3954cbbb1f0280ef191cff08183ac6c345-ed28985ad1d2361762e3196275222bc36de5194e; expires=Sun, 12-May-2024 16:14:55 GMT; Max-Age=57600; path=/; HttpOnly Set-Cookie: sid=9a6f017845d0055f992de7e698b1de76e16f4d92-a7b63f3954cbbb1f0280ef191cff08183ac6c345-ed28985ad1d2361762e3196275222bc36de5194e; expires=Sun, 12 May 2024 08:14:55 GMT; Max-Age=28800; path=/; secure; httponly; samesite=strict Set-Cookie: language=en-US; expires=Tue, 11 Jun 2024 00:14:55 GMT; Max-Age=2592000; path=/; httponly; samesite=strict Location: https://leantime.obaland.com/auth/login Page title: Redirecting to https://leantime.obaland.com/auth/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://leantime.obaland.com/auth/login'" /> <title>Redirecting to https://leantime.obaland.com/auth/login</title> </head> <body> Redirecting to <a href="https://leantime.obaland.com/auth/login">https://leantime.obaland.com/auth/login</a>. </body> </html>
Open service 116.80.43.74:443 · leantime.obaland.com
2024-05-05 00:07
HTTP/1.1 302 Found Server: nginx Date: Sun, 05 May 2024 00:08:02 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.28 Cache-Control: no-cache, private X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff 0: Referrer-Policy 1: same-origin Access-Control-Allow-Origin: https://leantime.obaland.com Pragma: no-cache Content-Security-Policy: default-src 'self' 'unsafe-inline';base-uri 'self';;script-src 'self' 'unsafe-inline' unpkg.com;font-src 'self' data:;img-src 'self' *.leantime.io data: blob:;frame-src 'self' *.google.com *.microsoft.com *.live.com;frame-ancestors 'self' *.google.com *.microsoft.com *.live.com Set-Cookie: sid=44a0629149a8f0a16d62a3240c38bf5b534a0608-4617c21d386ee3c40c32d26120cb993b3aa3a4ca-7452a152a6d4986c342f33fa53eb6b8d14d8e4f9; expires=Sun, 05-May-2024 16:08:02 GMT; Max-Age=57600; path=/; HttpOnly Set-Cookie: sid=44a0629149a8f0a16d62a3240c38bf5b534a0608-4617c21d386ee3c40c32d26120cb993b3aa3a4ca-7452a152a6d4986c342f33fa53eb6b8d14d8e4f9; expires=Sun, 05 May 2024 08:08:02 GMT; Max-Age=28800; path=/; secure; httponly; samesite=strict Set-Cookie: language=en-US; expires=Tue, 04 Jun 2024 00:08:02 GMT; Max-Age=2592000; path=/; httponly; samesite=strict Location: https://leantime.obaland.com/auth/login Page title: Redirecting to https://leantime.obaland.com/auth/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://leantime.obaland.com/auth/login'" /> <title>Redirecting to https://leantime.obaland.com/auth/login</title> </head> <body> Redirecting to <a href="https://leantime.obaland.com/auth/login">https://leantime.obaland.com/auth/login</a>. </body> </html>
Open service 116.80.43.74:80 · leantime.obaland.com
2024-05-05 00:07
HTTP/1.1 403 Forbidden Server: nginx Date: Sun, 05 May 2024 00:07:59 GMT Content-Type: text/html Content-Length: 548 Connection: close Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->